CVE-2025-1930: Windows AudioIPC Use-After-Free Vulnerability in Firefox and Thunderbird: Exploiting StreamData for Sandbox Escape
The CVE-2025-1930 vulnerability was first discovered impacting Windows users running older versions of Firefox and Thunderbird. This security flaw compromises the content process using malicious
CVE-2025-22225 - Breaking Out of VMware ESXi - A Deep Dive into the New Arbitrary Write Vulnerability
---
TL;DR:
This post covers the newly discovered CVE-2025-22225: an arbitrary kernel write vulnerability in VMware ESXi. We’ll explain how it works, demonstrate
CVE-2025-0288 - Paragon biontdrv.sys Kernel Privilege Escalation Vulnerability – Full Breakdown and Exploit Details
*Affected Products: Paragon Hard Disk Manager and other Paragon Software products (Windows)*
*Vulnerability: Arbitrary Kernel Memory Write in biontdrv.sys*
*CVSS Score: 8.8 (High)
CVE-2025-0289 - Exploiting Paragon Software’s Kernel Driver Vulnerability – Deep Dive & PoC
---
Recently, a serious security flaw has been discovered in various Paragon Software products (See: Original NVD Entry – CVE-2025-0289). This vulnerability, dubbed CVE-2025-0289, involves insecure
CVE-2024-55532 - Formula Injection in Apache Ranger CSV Export—How Hackers Can Turn Your CSV Into Their Playground
In April 2024, a new vulnerability emerged for everyone who uses Apache Ranger: CVE-2024-55532. This flaw deals with something that sounds boring but can be
Episode
00:00:00
00:00:00